Technology Risk & Compliance Lead

Recorded Future is seeking a Technology Risk & Compliance Lead to manage assurance requirements and ensure compliance with customer and regulatory security, confidentiality, and privacy standards using frameworks like CMMC, SOC 2, and ISO 27001. This role maintains the organization’s assurance and compliance obligations, aligns with customer and regulatory expectations, and supports IT risk management through advising leadership, analyzing initiatives, and driving risk and control framework design and implementation.

What You'll Do :

• Prepare for internal and external assessments (SOC 2, ISO, CMMC, etc.) by ensuring controls are audit-ready and validated on an ongoing basis.
• Conduct risk assessments to identify potential security and availability risks and advise on the design and governance of controls to mitigate these risks.
• Review and update the organization’s risk register (new risks, changes to existing risks, etc.).
• Track and remediate control deficiencies or gaps identified through design and operating effectiveness testing and validate mitigating / compensating controls are in place to address residual risk.
• Coordinate with technology teams to validate risk owners and mitigation plans and report summary results to internal compliance functions.
• Maintain evidence repositories and gather evidence to support both internal and external assessment and certification testing.
• Report risk and control status to senior management and governance committees (Legal, Privacy, Enterprise Risk Management, etc.).
• Partner in the development of strategy, objectives, and action plans for assurance obligations.
• Participate in multi-stakeholder meetings and provide administrative support for senior-level discussions.
• Maintain a deep understanding of the business and assurance obligations to shape successful execution plans.
• Ensure ongoing compliance with statutory and regulatory requirements, anticipate future legislation and / or customer demands, enforce adherence to requirements, and advise management on needed actions.
• Identify, collect, synthesize, and communicate risks and blockers concisely, accurately, and professionally for senior leadership to ensure alignment.
• Regularly define and review key success metrics for data-focused tracking and proactively seek out new and improved mechanisms for visibility, ensuring the program stays aligned with organizational objectives.

What You'll Bring :

Preferred Qualifications :

Why should you join Recorded Future? Recorded Future employees (or “Futurists”) represent over 40 nationalities and embody core values of high standards, inclusion, and ethics. Our dedication to empowering clients with intelligence has earned us a 4.8-star Gartner rating and more than 45 Fortune 100 companies as clients.

Equal Opportunity Statement : Recorded Future is an equal opportunity and affirmative action employer. We do not discriminate based on any protected characteristic. We welcome candidates from all backgrounds to apply.

#J-18808-Ljbffr